|
|
|
Virtually Eliminating Router BugsEric Keller, Minlan Yu, and Jennifer Rexford, Princeton University; Matt Caesar, UIUCPresentation Date: June 16, 2009, 3:00 PM - 3:30 PM
Room: Regency Ballroom, 2nd FL Mezz
Abstract:
Software bugs in routers lead to network outages, security vulnerabilities, and other unexpected behavior. Rather than simply crashing the router, bugs can violate protocol semantics, rendering traditional failure detection and recovery techniques ineffective. Handling router bugs is an increasingly important problem as new applications demand higher availability, and networks become better at dealing with traditional failures. Further demonstrating the importance is a string of recent high profile outages, including a very recent incident where a single prefix announcement to a single provider caused a huge increase in the global update rate and instability due to two bugs in routers from two different vendors. In this paper, we tailor software and data diversity (SDD) to the unique properties of routing protocols, to avoid buggy behavior at run time. Our bug-tolerant router executes multiple diverse instances of routing software, and uses voting to determine the output to publish to the forwarding table, or to advertise to neighbors. We design and implement a router hypervisor that makes this parallelism transparent to other routers, handles fault detection and booting of new router instances, and performs voting in the presence of routing-protocol dynamics, without need to modify software of the diverse instances. Experiments with BGP message traces and the XORP and Quagga open-source software running on our Linux-based router hypervisor demonstrate that our solution scales to large networks and efficiently masks buggy behavior.
Eric Keller Biography:
Eric Keller is a 4th year Ph.D. student in the Electrical Engineering department at Princeton University. He is actively working on network virtualization under the guidance of Jennifer Rexford in the Computer Science department. Prior to Princeton, Eric worked at Xilinx, a semiconductor company that makes FPGAs.
Jennifer Rexford Biography:
Jennifer Rexford is a Professor in the Computer Science department at Princeton University. From 1996-2004, she was a member of the Network Management and Performance department at AT&T Labs-Research. She received her BSE degree in electrical engineering from Princeton University in 1991, and her MSE and PhD degrees in computer science and electrical engineering from the University of Michigan in 1993 and 1996, respectively.
Archived Files:
NANOG46 Abstracts- ARIN Update
Mark Kosters, ARIN
- BGP Scalability Considerations
Danny McPherson, Arbor Networks; Shane Amante, Level 3 Communications
- Communications Sector and Information Technology Sector
Marcus Sachs, Verizon; Jared Mauch, ITT
- Data Center Cooling New Technologies
Moderator: Aaron Hughes, Cariden Technologies
Panelists: Lane Patterson, Equinix; Josh Snowhorn, Terremark; Dave Pickut, Equinix; Ben Stewart, Terremark Worldwide; Richard Donaldson, 6Connect; Tesh Durvasala, Telx
- Datacenter Top-of-Rack Switch Redundancy Models
Dani Roisman, Peak Web Consulting
- Tutorial: Deploy a Production IPv6 Network in 30 Minutes or less (or it's free)
Moderator: Richard Steenbergen, nLayer Communications
- DNSSEC Goes Mainstream: Deployment Incentives, Experience, and Questions
Suzanne Woolf, Internet Systems Consortium
- Tutorial: Effective BGP Load Balancing Using "The Metric System"
Moderator: Dani Roisman, Peak Web Consulting
- Hijacking Mitigation: Something is Better Than Nothing
Todd Underwood, Google; James Cowie, Renesys; Tom Daly, Dynamic Network Services; Anton Kapela, Voxel
- BOF: IETF OPS & MGMT Area
Ron Bonica, Juniper Networks
- Internet Superbugs and The Art of War
Paul Vixie, Internet Systems Consortium
- Tutorial: Introduction to DHCPv6 and DHCPv6 for DOCSIS
John Brzozowski, Comcast
- Tutorial: Introduction to DOCSIS 3.0
Pularikkal Byju, Cisco Systems
- IPv6 Deployment on a Broadband Access Network
Athanasios Douitsis, National Technical University of Athens
- LISP Updates
Vince Fuller, Cisco
- Network Address Translation and IPv4 Address Exhaustion: A Mechanism to Transition to IPv6
Moderator: David Ward, Cisco Systems
Panelists: Alain Durand, Comcast; Suzanne Woolf, Internet Systems Consortium; Lixia Zhang, UCLA; Chris Chase, AT&T Labs
- Tutorial: Network Capacity RFP: What, Why, How-To
Martin Hannigan
- BOF: Peering
Ryan Donnelly, VeriSign
- Pseudowires from 1999 to 2009, 10 Years of Evolution and Deployments
Luca Martini, Cisco
- Rapid Convergence in IP Networks
Tom Scholl, AT&T Labs
- BOF: Switching: Best Hope for Low Cost High Density Routers
Joel Jaeggli, Checkpoint Software
- Track: IPv6
Moderator: Nina Bargisen, TDC
John Jason Brzozowski, Comcast; Andy Davidson, LONAP/NetSumo; Tom Coffeen, Limelight Networks; Randy Bush, IIJ; Dave Temkin, Netflix
- Track: ISP Security
Moderator: Danny McPherson, Arbor Networks
Warren Kumari, Google; Paul Vixie, Internet Systems Consortium; Randy Bush, IIJ; Chris Morrow, Google
- Virtually Eliminating Router Bugs
Eric Keller, Minlan Yu, and Jennifer Rexford, Princeton University; Matt Caesar, UIUC
- Tutorial: VoIP Peering
Jon Peterson, Neustar
- Wireless: The Headache You Can't See (Part Deux)
Vikas Khanna, Covad Communications, Inc.
- Show All
Back to the NANOG46 main page.
|